Privacy Policy
Last updated: November 18, 2025
1. Introduction
Welcome to Wandero AI – your personalized travel companion powered by artificial intelligence. We respect your privacy and are committed to being transparent about how we handle your personal data. This Privacy Policy explains what information we collect, how we use it, and what rights you have depending on where you live.
Wandero AI operates globally, so this policy includes provisions for both:
- Global users (GDPR / international)
- U.S. users (California CCPA/CPRA, Virginia, Colorado, and other state privacy laws)
If you access Wandero AI from the European Economic Area (EEA), United Kingdom, or other regions with data protection laws, the Global Privacy Policy applies.
If you access from the United States, the U.S. Privacy Addendum applies alongside the core policy.
2. Who We Are
Wandero AI ("we", "our", "us") is operated by Wandero Inc, registered in the USA. We act as the data controller for personal data collected through our web platform.
Contact Information:
📍 Address: 455 Market St Ste 1940 PMB 269668, San Francisco, CA, 94105
📧 Email: hello@wandero.ai
3. What We Collect
When you use our web platform, we may collect the following information:
| Category | Description | Examples |
|---|---|---|
| Identity & Contact | To identify and communicate with you | Name, email, phone, postal address |
| Travel & Preferences | To create tailored itineraries and recommendations | Saved trips, destinations, travel dates, activity preferences |
| Payment & Subscription | To process payments and manage your account | Payment info, billing address, transaction history |
| Usage Data | To improve our platform performance | IP address, browser type, device, session logs |
| Analytics Data | To enhance AI recommendations and product experience | Click patterns, itinerary engagement data |
| Business Partner Data | For B2B relationships | Company name, contact person, business email |
We collect this data only via our web-based platform and related integrations (e.g., analytics, payment, or CRM tools).
Wandero AI does not currently operate a mobile app.
4. How and Why We Use Your Information
| Purpose | Example | Legal Basis (Global) | Legal Basis (U.S.) |
|---|---|---|---|
| Provide Wandero services | Generate itineraries, respond to inquiries | Performance of a contract | Commercial use |
| Manage payments & subscriptions | Billing, renewals | Contract / legal obligation | Commercial use |
| Improve and personalize the experience | Recommendations, feature testing | Legitimate interest / consent | Commercial / analytics |
| Communicate with users | Support, notifications, offers | Legitimate interest | Business communication |
| Ensure security & fraud prevention | System logs, misuse detection | Legal obligation | Security purposes |
| Comply with regulations | Accounting, data retention | Legal obligation | Legal compliance |
We do not sell or rent personal data.
5. Cookies and Tracking
We use cookies and browser-based technologies to:
- Keep you signed in
- Remember preferences
- Analyze performance and improve our product
We use non-essential cookies only with your consent.
You can manage cookie preferences through your browser or our cookie settings banner.
6. Data Sharing and Transfers
We may share your data with:
- Service providers (hosting, analytics, payments) under strict contracts.
- Business partners (DMCs, travel agencies) only when necessary to fulfill a request.
- Authorities, when required by law.
- Corporate events (merger, acquisition) under data-protection safeguards.
For users outside the EEA, data may be transferred internationally. We apply Standard Contractual Clauses (SCCs) and other lawful mechanisms to protect data abroad.
7. Data Retention
We retain personal data only as long as necessary for operational, legal, and analytical purposes:
- Account data → while your account is active + up to 12 months after deletion.
- Billing & payments → as required by law (typically 5–7 years).
- Analytics data → anonymized or deleted after analysis.
When no longer needed, we delete or anonymize your data securely.
8. Your Privacy Rights (Global)
If you are in the EU, UK, or another GDPR jurisdiction, you have the following rights:
- Access – request a copy of your data.
- Rectification – correct inaccuracies.
- Erasure – request deletion ("right to be forgotten").
- Restriction – limit how we process data.
- Portability – receive your data in a transferable format.
- Objection – stop processing for legitimate interest or marketing.
- Automated decisions – request human review for automated decisions.
To exercise these, contact hello@wandero.ai.
We respond within one month, as required by GDPR.
9. U.S. Privacy Addendum
For users residing in the United States, this section describes additional rights and obligations under the California Consumer Privacy Act (CCPA/CPRA) and similar state laws.
Categories of Personal Information Collected
We collect: identifiers (name, email), commercial data (transaction history), internet activity (usage logs), and inference data (preferences).
We do not collect sensitive personal information as defined by the CPRA (e.g., biometric or precise geolocation).
Your Rights (U.S. Residents)
Depending on your state, you may have the right to:
- Access: Request details about personal data collected.
- Correction: Ask us to fix inaccurate information.
- Deletion: Request deletion of your personal data.
- Portability: Receive a copy of your data.
- Opt-out: Ask us not to sell or share data for cross-context behavioral advertising.
- Limit use of sensitive data: (if applicable).
To exercise these rights, email hello@wandero.ai with the subject "U.S. Privacy Request."
We will verify your identity before processing the request.
We do not sell or share personal data as defined under CCPA/CPRA.
10. Security
We apply industry-standard security measures:
- Data encryption (in transit and at rest)
- Access control and authentication
- Secure cloud infrastructure
- Employee confidentiality agreements
- Regular security testing
If a data breach occurs that may impact your rights, we will notify you and the relevant authority promptly.
11. Children's Privacy
Wandero AI is not directed to children under 16 (or local minimum age).
We do not knowingly collect children's data. If discovered, it will be promptly deleted.
12. Updates to This Policy
We may revise this policy from time to time. When we do, we will:
- Update the "Last updated" date above, and
- Notify you if changes are significant.
13. Contact Us
If you have questions, concerns, or wish to exercise your rights:
Wandero AI
📧 Email: hello@wandero.ai
📍 Address: 455 Market St Ste 1940 PMB 269668, San Francisco, CA, 94105